Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6661303a3a2f34342d3438203d3e203533363637.roa
File: 326131343a373538313a6661303a3a2f34342d3438203d3e203533363637.roa (raw, json)
Hash identifier: p18/rYRt1QHZU+a55R3kI/6kJAAEQzrV60iBtyxxMDg=
Subject key identifier: 08:64:4A:87:4F:B4:EC:71:D5:B6:67:EF:65:18:1D:35:2F:F1:C1:3A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 6383259705328E3B2EA4B43CB50C370586F82327
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6661303a3a2f34342d3438203d3e203533363637.roa
Signing time: Tue 03 Sep 2024 17:19:34 +0000
ROA not before: Tue 03 Sep 2024 17:14:34 +0000
ROA not after: Tue 02 Sep 2025 17:19:34 +0000
asID: 53667
IP address blocks: 2a14:7581:fa0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:83:25:97:05:32:8e:3b:2e:a4:b4:3c:b5:0c:37:05:86:f8:23:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 3 17:14:34 2024 GMT
Not After : Sep 2 17:19:34 2025 GMT
Subject: CN=08644A874FB4EC71D5B667EF65181D352FF1C13A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ab:db:41:47:10:ab:e0:20:81:6c:6d:5c:40:
91:d8:d8:22:fb:8a:2d:61:79:92:51:b9:23:fd:aa:
5d:ba:a9:9c:b2:26:db:25:5c:46:b7:f9:11:d0:c1:
88:c1:05:40:6d:9d:d4:7b:20:68:fd:06:50:eb:2c:
1d:86:eb:e2:e8:24:17:d8:78:50:05:43:41:1d:c0:
4c:b9:b1:53:1b:6c:8a:26:4b:aa:06:2e:fc:74:ce:
b4:71:31:a1:8e:61:0f:8c:88:1b:0b:32:04:25:ac:
ec:fc:91:70:89:61:c9:5e:2c:87:13:17:a8:84:12:
d5:ca:6f:4e:6a:69:74:6e:89:83:ee:98:24:7a:6b:
94:8c:26:d4:85:df:9d:1f:d0:39:05:c9:94:b9:61:
04:86:e6:ed:47:b3:fe:a5:20:79:3c:5a:ca:33:38:
44:6a:91:01:8b:42:1c:bf:40:c5:30:64:5e:9d:6e:
57:66:02:00:e1:39:5e:a0:b1:4c:31:db:1f:d7:85:
68:c8:5c:37:c1:f7:bd:eb:9f:ab:fc:e9:5b:9d:92:
a8:0c:80:26:b3:56:6d:f6:85:64:db:6b:c1:52:97:
cf:0d:2a:40:ce:52:81:89:62:c3:fc:be:9d:77:12:
c3:c1:77:26:10:0f:69:6c:28:84:e9:e9:38:76:b1:
6b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:64:4A:87:4F:B4:EC:71:D5:B6:67:EF:65:18:1D:35:2F:F1:C1:3A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6661303a3a2f34342d3438203d3e203533363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:fa0::/44
Signature Algorithm: sha256WithRSAEncryption
8c:31:de:93:33:eb:c4:9c:e2:f0:e2:f4:05:b3:80:ca:8c:bf:
bf:28:e2:bf:04:06:ca:3f:26:91:09:ad:f7:5c:85:7f:31:d4:
14:1e:59:0f:af:c0:fa:48:43:88:31:4a:44:08:18:35:fd:33:
9a:7f:52:09:03:d5:83:03:be:80:0d:3c:d7:97:2e:96:14:c7:
3b:13:ce:06:e6:4e:e5:0c:2c:81:b4:bb:2f:26:dc:73:a7:e8:
2f:4f:dd:a6:86:f5:55:6a:df:d2:48:98:e5:c7:40:cb:04:0d:
49:46:91:92:42:10:43:a0:c0:14:bc:5d:f1:db:0d:e9:c1:7f:
60:48:ab:bb:42:f1:cb:2f:3d:db:cd:72:68:c5:c5:59:53:60:
96:53:e6:a4:62:7b:91:de:dc:11:57:c0:cb:7e:1b:3e:3e:8a:
10:83:b8:04:fd:9a:f3:3d:10:03:6b:52:18:e7:bc:e3:d0:ff:
c2:e5:9e:9a:f4:65:cd:4d:79:d4:7d:1e:71:76:61:5b:c8:dc:
ca:28:20:4c:d0:1b:46:45:0b:5e:8c:9b:d3:3b:d0:8f:54:fd:
4c:65:4f:92:a8:16:5b:a0:d1:21:ca:95:f2:05:0b:95:6d:65:
25:12:00:1c:d4:9e:f4:be:f6:c8:29:8c:3d:c4:92:28:3f:e8:
56:5c:87:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org